Re: ISA 2004 VPN PPTP / L2TP access issue
- From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Fri, 11 Feb 2005 06:19:01 -0800
Change the policy yourself.
You can disable the system policy rule and create your own customized
firewall rules.
-----Original Message-----
From: Mark Wrightson [mailto:mark.wrightson@xxxxxxxxxxxxxxxx]
Sent: Friday, February 11, 2005 1:06 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: ISA 2004 VPN PPTP / L2TP access issue
http://www.ISAserver.org
No I can't. Not in the circumstances. Much easier if I can find an
answer to the question
>>> podo@xxxxxxx 2/10/2005 2:01:37 PM >>>
http://www.ISAserver.org
You can use NAT-T also for IPSEC traffic...
On Thu, 10 Feb 2005 04:18:41 -0700, Mark
<mark.wrightson@xxxxxxxxxxxxxxxx>
wrote:
> http://www.ISAserver.org
>
> I want to allow L2TP VPN access only for for VPN clients. No problem.
>
> However I need to allow PPTP access for a site to site VPN to / from
> the specific IP address of the remote site. No problem (I need PPTP
> for a NAT-T issue at the remote site)
>
> The problem is when I allow PPTP access for site to site VPN the
> system alters the System Policy Rules and allows PPTP access for the
clients.
> Hence I lose L2TP security on remote client logins. I can't edit the
> system policy so I can't fix the problem
>
> Anyone got a solution / fix ?
>
> Mark
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com Leading
> Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
> Security Resource Site: http://www.windowsecurity.com/ Network
> Security Library: http://www.secinf.net/ Windows 2000/NT Fax
> Solutions: http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> podo@xxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com Leading
Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
mark.wrightson@xxxxxxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
************************************************************************
**********
This e-mail and its attachments are intended for the above named only
and may be confidential. They are intended to be used by the addressee
solely for the purpose of conducting business with Northgate Plc and its
associated companies. If they have come to you in error you must delete
them, take no action based on them, nor must you copy or show them to
anyone.
Security Warning:
Please note that this e-mail has been created in the knowledge that
Internet e-mail is not a 100% secure communications medium. You
acknowledge that you understand and take account of this lack of
security when e-mailing us.
Viruses:
Although we have taken steps to ensure that this e-mail and attachments
are free from any virus, we advise that in keeping with good computing
practice the recipient should ensure they are actually virus free and
Northgate Plc accepts no liability for such viruses.
Data Protection
From time to time we may wish to send you information relating to our
products and services by email. Your email address will be for sole use
by our company and companies within the Northgate plc group of companies
and will not be passed out to any third parties. If you do not wish to
receive information by email then please reply to this email with the
word 'remove' in the subject line. Please include your exact email
address and company name. We will remove you immediately from our
mailing list.
Northgate Plc
Norflex House
Allington Way
Darlington
Co Durham
DL1 4DY
Registered in England No. 53171
************************************************************************
**********
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com Leading
Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
All mail to and from this domain is GFI-scanned.
Other related posts:
